Things to Do

 

Capture the Flag

Presented by Xanthus Security

With the naruto runners being largely unsuccessful, ‘Storm Area 51’ has morphed into ‘Hack Area 52’. Join us in this all out onslaught to hack their web servers, exploit exposed network services, crack their cryptography, decipher their signals and maybe even disrupt their operational industrial control systems; such as display panels, door locks and sending their delivery train to a sweet cliff jumping demise. We hope to see you there!

CTF is open from 9:00am – 5:30pm both days.


 
 

Application Security Training

Presented by OWASP

Software powers the world, but insecure software threatens safety, trust, and economic growth. The Open Web Application Security Project (OWASP) is dedicated to making application security visible by empowering individuals and organizations to make informed decisions about true application security risks.

The OWASP Ottawa chapter has partnered with the BSides Ottawa again this year to bring you amazing conference content from local software security experts. Are you a developer, tester or pen-tester? Then this track is for you. You will have the opportunity to learn the latest in DevSecOps, security tools, vulnerabilities and secure development practices. Please stay tuned for complete talks schedule, location and dates. Follow @OWASP_Ottawa and @BSidesOttawa.

OWASP Training Schedule


Lockpick Village

Presented by TOOOL Ottawa

Giving keyless entry a different meaning…

New or experienced, come learn how lock picking works, and try it yourself on a variety of practice locks leading to progressively more challenging locks. TOOOL Ottawa reminds everyone to never pick a lock you do not have permission to open, and never pick a lock you depend on. This village has plenty of locks, cuffs and challenges to satisfy your curiosity so you need not be tempted to practice on your own door locks, with friendly people nearby to help and encourage you.

Lock picking is a rewarding experience and in under and hour many people are able to master the techniques and get the thrill of opening some of the most common padlocks available. Other hands on training will include lock pinning, handcuffs and bypass tools.

Check out our Meetups


 

Fortinet Fast Track Session

Constructing a Secure SD-WAN Architecture

As organizations transition to a digital business model, their network topologies are significantly impacted. The adoption of cloud services, the virtualization of the traditional network, and an increasingly mobile workforce accessing applications in the cloud are accelerating advancements in wide area networking technologies. The traditional wide area network (WAN) is struggling to keep up because it relies on a static infrastructure of devices that simply can’t accommodate shifting, and often temporary resource allocation and workloads.

Attend this technical training workshop to learn how software-defined networking (SDN) applies to software control of wide area networks in an enterprise environment. Gain hands-on experience through actual configuration of virtualized products supporting WAN aggregation.


IoT Village

IoT Village created by ISE, presented by Epyc Security & Loudmouth Security

Organized by security consulting and research firm Independent Security Evaluators (ISE), IoT Village delivers advocacy for and expertise on security advancements in Internet of Things devices. IoT Village hosts talks by expert security researchers who dissect real-world exploits and vulnerabilities and hacking contests consisting of off-the-shelf IoT devices.


 

RFID Village

Presented by Loudmouth Security

The RFID Village is a showcase of the security weaknesses in common RFID access controls. RFID access controls are widely used to secure commercial spaces, yet the most common systems are highly vulnerable. This village aims to bring awareness to the simplicity of the attacks, and what can be done in defence.


 
Hack The Box

HTB Labs

Have you always wanted to learn how to pop a shell but don’t know where to get started? Are you looking for a challenge to hone your tradecraft? Whether you’re a noob or a pro, come and watch an amazing lineup of speakers take you through the exhilarating journey of how to start with only an IP address and then enumerate and chain vulnerabilities together to eventually get system/root level access on Hack The Box machines.

Presented by:
1. Rana Khalil
2. David Van Gool
3. Samuel Wong
4. Abdulwahaab Ahmed
5. Diana Whitney
6. Simon Sulyma
7. Andriy Zelenyuk
8. Kamran Bilgrami